Feeds

Terror phone clone scam exposed

Rogers bill probe unveils abuse

Choosing a cloud hosting partner with confidence

Affiliates of terrorist organization Hezbollah cloned the mobiles of senior executives of Canadian operator Rogers Communications, including chief exec Ted Rogers. Even though the firm had technology in place to trigger alerts over suspicious departures in call activity, Rogers staffers were too frightened of inconveniencing bosses to do anything about the fraud, Canadian paper the Globe and Mail reports.

The scam only came to light after law professor Susan Drummond challenged a mobile phone of C$12,000 she received after her return from a month-long trip to Israel. The monster mobile bill listed more than 300 calls made in August to foreign countries including Libya, Pakistan, Russia and Syria. Drummond was told she'd have to foot the bill despite her protests than she'd never previously made overseas calls using the account. Her normal bill was around C$75.

Rogers' continued insistence that the bill nevertheless had to be paid prompted Drummond and her partner, Harry Gefen, to begin investigating. That probe hit pay dirt when Gefen tape recorded an interview with a Rogers security manager, Cindy Hopper, who was speaking at a conference on telecoms fraud in Toronto in September. Unaware that Gefen was an aggrieved punter, Hopper told him that terrorists groups linked to had Hezbollah repeatedly cloned the mobile phones of senior Rogers execs in 1997 and 1998. Senior Rogers' execs were perfect targets for fraud since staffers could not be sure if calls were legitimate or not. Fear of inconveniencing their superiors over something that turned out to be a false alarm prevented workers from taking any action.

"They were cloning the senior executives repeatedly, because everyone was afraid to cut off Ted Rogers' phone," Hopper told Gefen, in an interview that recognised the cleverness of the social engineering trick. "They were using actually a pretty brilliant psychology. Nobody wants to cut off Ted Rogers' phone or any people that are directly under Ted Rogers, so they took their scanners to our building... Nobody wants to shut off Ted. Even if he is calling Iran, Syria, Lebanon, and Kuwait."

During the interview, Hopper confirmed that Rogers had a system in place similar to those used by banks to flag up suspicious card transactions that was capable of spotting fraud-in-progress. The information obtained by her partner enabled Drummond to file a small court claim against Rogers Wireless alleging that it "profiting from crime" by failing to shut down stolen mobile phones.

Initially Rogers resisted this action arguing that Drummond was responsible for calls made on the account prior to reporting that her phone was been misused. However after the story broke over the weekend, Rogers CEO Ted Rogers intervened and offered to write off the debt along with paying Gefen and Drummond's out-of-pocket expenses. Drummond also extracted from the chief exec to a promise to attend their house and hear their concerns over a cup of tea.

"I'm glad that we got somewhere with this fight, but it shouldn't take a law professor and a technology journalist to make them behave like decent corporate citizens," Drummond told the Globe and Mail. ®

Beginner's guide to SSL certificates

More from The Register

next story
FYI: OS X Yosemite's Spotlight tells Apple EVERYTHING you're looking for
It's on by default – didn't you read the small print?
Russian hackers exploit 'Sandworm' bug 'to spy on NATO, EU PCs'
Fix imminent from Microsoft for Vista, Server 2008, other stuff
Microsoft pulls another dodgy patch
Redmond makes a hash of hashing add-on
'LulzSec leader Aush0k' found to be naughty boy not worthy of jail
15 months home detention leaves egg on feds' faces as they grab for more power
Kill off SSL 3.0 NOW: HTTPS savaged by vicious POODLE
Pull it out ASAP, it is SWISS CHEESE
Facebook slurps 'paste sites' for STOLEN passwords, sprinkles on hash and salt
Zuck's ad empire DOESN'T see details in plain text. Phew!
China is ALREADY spying on Apple iCloud users, claims watchdog
Attack harvests users' info at iPhone 6 launch
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Cloud and hybrid-cloud data protection for VMware
Learn how quick and easy it is to configure backups and perform restores for VMware environments.
Three 1TB solid state scorchers up for grabs
Big SSDs can be expensive but think big and think free because you could be the lucky winner of one of three 1TB Samsung SSD 840 EVO drives that we’re giving away worth over £300 apiece.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.